Wenzel / osw-fs-windows

Related projects ⓘ

Alternatives and complementary repositories for osw-fs-windows

• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆35Updated 4 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 4 years ago
• msuiche / smbaloo
  ☆49Updated 4 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆36Updated 6 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 6 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 4 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆42Updated 3 years ago
• v-p-b / kaspy_toolz
  ☆46Updated 5 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• NtRaiseHardError / Sysmon
  Sysmon shenanigans
  ☆65Updated 4 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆49Updated 4 years ago
• yoava333 / presentations
  A repository for my conference presentations
  ☆35Updated 4 years ago
• d0c-s4vage / narly
  Automatically exported from code.google.com/p/narly
  ☆22Updated 3 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆31Updated 4 years ago
• BorjaMerino / Windows-One-Way-Stagers
  Windows Stagers to circumvent restrictive network environments
  ☆63Updated 2 months ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆42Updated 11 months ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆61Updated 4 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆83Updated 2 years ago
• ionescu007 / hazmat5
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆33Updated 3 years ago
• 0vercl0k / CVE-2021-32537
  PoC for CVE-2021-32537: an out-of-bounds memory access that leads to pool corruption in the Windows kernel.
  ☆57Updated 3 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆36Updated 4 years ago
• 86hh / DreamLoader
  Simple 32/64-bit PEs loader.
  ☆135Updated 5 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆29Updated 5 years ago
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆86Updated 5 years ago